Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 02-06-2020 Uruchomiony przez Pc (administrator) PC-KOMPUTER (03-06-2020 19:07:44) Uruchomiony z D:\ Załadowane profile: Pc Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Opera) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Windows\runSW.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\AvastBrowserCrashHandler.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\AvastBrowserCrashHandler64.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <2> (AVG Netherlands B.V. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.4.155.333\AVGBrowserCrashHandler.exe (AVG Netherlands B.V. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.4.155.333\AVGBrowserCrashHandler64.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswEngSrv.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe <2> (bookingDesktopApp.) [Brak podpisu cyfrowego] C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Elaborate Bytes AG -> Elaborate Bytes AG) D:\VirtualCloneDrive\VCDDaemon.exe (Electronic Arts, Inc. -> Electronic Arts) D:\Origin\OriginWebHelperService.exe (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel(R) Intel Network Drivers -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe (IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe (IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe (LogMeIn, Inc. -> LogMeIn Inc.) E:\x64\hamachi-2.exe (LogMeIn, Inc. -> LogMeIn, Inc.) E:\x64\LMIGuardianSvc.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Xbox 360 Accessories\XBoxStat.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\alg.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\UI0Detect.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Opera Software AS -> Opera Software) C:\Users\Pc\AppData\Local\Programs\Opera GX\68.0.3618.142_0\opera.exe <15> (Opera Software AS -> Opera Software) C:\Users\Pc\AppData\Local\Programs\Opera GX\68.0.3618.142_0\opera_crashreporter.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek) [Brak podpisu cyfrowego] C:\Windows\SwUSB.exe (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16407296 2015-10-30] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [156776 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [353776 2020-06-02] (Riot Games, Inc. -> Riot Games, Inc.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [108136 2020-06-03] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-09-25] (Intel Corporation - Software and Firmware Products -> Intel Corporation) HKLM-x32\...\Run: [VirtualCloneDrive] => D:\VirtualCloneDrive\VCDDaemon.exe [105280 2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG) HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5237520 2019-04-01] (IObit Information Technology -> IObit) HKLM-x32\...\Run: [XboxStat] => C:\Program Files (x86)\Microsoft Xbox 360 Accessories\XboxStat.exe [718688 2009-09-30] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => "E:\hamachi-2-ui.exe" --auto-start HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-22] (Kilonova LLC -> ) HKLM-x32\...\Run: [Blitz] => C:\Users\Pc\AppData\Local\Programs\Blitz\Blitz.exe [90735248 2020-06-02] (Swift Media Entertainment, Inc. -> Blitz Inc.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7357440 2020-05-28] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\Run: [CCleaner Smart Cleaning] => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\Run: [Spotify] => C:\Users\Pc\AppData\Roaming\Spotify\Spotify.exe [22824680 2020-05-28] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2417016 2020-05-17] (Wargaming.net Limited -> Wargaming.net) HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\Run: [AVGBrowserAutoLaunch_9AA25A012043E0A002C637D60955A479] => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1849264 2020-05-12] (AVG Technologies USA, LLC -> AVG Technologies) HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\Run: [com.blitz.app] => C:\Users\Pc\AppData\Local\Programs\Blitz\Blitz.exe [90735248 2020-06-02] (Swift Media Entertainment, Inc. -> Blitz Inc.) HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\Run: [electron.app.GOSU Assistant] => C:\Users\Pc\AppData\Local\Programs\gosu.ai\GOSU Assistant.exe [90890560 2020-05-29] (GOSU DATA LAB UAB -> GOSU Data Lab UAB) HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\Run: [gosu-electron-desktop] => C:\Users\Pc\AppData\Local\Programs\gosu.ai\GOSU Assistant.exe [90890560 2020-05-29] (GOSU DATA LAB UAB -> GOSU Data Lab UAB) HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91667312 2020-05-12] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\Run: [GOSU Assistant] => C:\Users\Pc\AppData\Local\Programs\gosu.ai\GOSU Assistant.exe [90890560 2020-05-29] (GOSU DATA LAB UAB -> GOSU Data Lab UAB) HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\Run: [Overwolf] => E:\Overwolf\OverwolfLauncher.exe [1752408 2020-05-24] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\MountPoints2: {14b7a0fb-488c-11e8-b7c8-7085c221e55e} - G:\setup.exe HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\MountPoints2: {586062a0-ace5-11e8-8820-7085c221e55e} - H:\HiSuiteDownLoader.exe HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\MountPoints2: {f0a0528b-456d-11e7-87a1-806e6f6e6963} - F:\ASRSetup.exe HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\Winlogon: [Shell] %comspec% <==== UWAGA HKU\S-1-5-21-3563840331-3337734302-301689356-1000\...\Command Processor: @mode 20,5 & tasklist /FI "IMAGENAME eq SoundMixer.exe" 2>NUL | find /I /N "SoundMixer.exe">NUL && exit & if exist "C:\Users\Pc\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" ( start /MIN "" "C:\Users\Pc\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" & tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) else ( tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) <==== UWAGA HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.61\Installer\chrmstp.exe [2020-05-28] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\81.1.4223.139\Installer\chrmstp.exe [2020-06-03] (Avast Software s.r.o. -> AVAST Software) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\81.1.4222.140\Installer\chrmstp.exe [2020-06-02] (AVG Technologies USA, LLC -> AVG Technologies) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.107\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-05-04] (Adobe Inc. -> Adobe Systems, Inc.) HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.) Startup: C:\Users\Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HoneygainUpdater.lnk [2020-05-20] ShortcutTarget: HoneygainUpdater.lnk -> C:\Users\Pc\AppData\Roaming\Honeygain\HoneygainUpdater.exe (OOO "XMAC" -> Honeygain) GroupPolicy: Ograniczenia ? <==== UWAGA FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0A4B7BE8-B660-4A49-A505-F0C756B627C0} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2000104 2020-05-12] (Avast Software s.r.o. -> AVAST Software) Task: {0E5EDB95-BC0E-4FD3-9D8C-6F7B75EB8D17} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2000104 2020-05-12] (Avast Software s.r.o. -> AVAST Software) Task: {118601CE-25D1-486C-B72E-5A9F481FEEB9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-05-30] (Google Inc -> Google Inc.) Task: {1CD57FFD-160D-4BD7-BFFF-1D4D3FAAFDE8} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-06-03] (Avast Software s.r.o. -> AVAST Software) Task: {1DC5125B-33F7-458C-8EF8-9B0CB898304F} - System32\Tasks\bookingDesktopAppUpdateTaskMachineUA => C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2019-11-28] (bookingDesktopApp.) [Brak podpisu cyfrowego] Task: {1F1428AA-0E2F-4911-B048-4BEDAB7BA6E3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {266B2DC4-B3CF-4175-9336-894DC84A22C5} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe <==== UWAGA Task: {276C22C4-4498-4DAE-95BF-AA323B6E11EE} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [3314272 2020-06-03] (Avast Software s.r.o. -> AVAST Software) Task: {327AF357-1435-445F-8930-3AC793BAB198} - System32\Tasks\{C7851F39-536C-42A5-A43A-879993392768} => C:\Users\Pc\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-05-19] (Opera Software AS -> Opera Software) Task: {410FD65E-8007-43AE-9F0B-18DEF42FC204} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-04-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {42BEC048-20EF-44FD-9726-A37504375DC2} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-06-03] (Avast Software s.r.o. -> AVAST Software) Task: {43CC78EA-18ED-4D17-BDDF-CA955BAC55E2} - System32\Tasks\{8A05072A-CDFC-4501-85EB-86C9BDA2D8D4} => C:\Windows\system32\pcalua.exe -a C:\Users\Pc\AppData\Local\Temp\jre-8u251-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== UWAGA Task: {4458F330-B1C0-4EA8-8904-E70B010F5D7E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {489ED52E-4E79-4555-9974-393D1A58CD83} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-01] (Dropbox, Inc -> Dropbox, Inc.) Task: {4ECCEEC1-534C-47A1-8C3F-9186521DA4FD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe Task: {51BE1BC7-7105-4D42-9291-6981007C7F5E} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1957744 2018-11-26] (Microsoft Corporation -> Microsoft Corporation) Task: {52895769-5687-4CAD-9B84-70F0978A9782} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {52ACAF67-E51D-4472-8F29-814FD66F6065} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {56C7386E-F190-4D76-BD11-931CD2360AC9} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1692296 2020-02-27] (AVG Technologies USA, LLC -> AVG Technologies) Task: {5E504A07-F593-4F09-AA11-E9C85A0506F4} - System32\Tasks\{6B9AA344-7A2B-44EA-A22A-F7AE1B0C96C0} => C:\Windows\system32\pcalua.exe -a C:\Users\Pc\AppData\Local\Temp\jre-8u171-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== UWAGA Task: {6CC9B741-B3C5-4576-832B-B1E984C86E26} - System32\Tasks\IMF_SkipUAC_Pc => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5237520 2019-04-01] (IObit Information Technology -> IObit) Task: {6D146A4D-8EBC-4FCC-820C-C18C995F7FFB} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1849264 2020-05-12] (AVG Technologies USA, LLC -> AVG Technologies) Task: {6F8E7FFA-0C1E-440B-8189-EF52AEDEAD27} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1849264 2020-05-12] (AVG Technologies USA, LLC -> AVG Technologies) Task: {7345E49A-3F90-4ECE-A0AF-E7882E6C1871} - System32\Tasks\Uninstaller_SkipUac_Pc => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [5292304 2019-02-26] (IObit Information Technology -> IObit) Task: {7DE81B26-B4A0-4A25-AD48-B5CB6B2ECA51} - System32\Tasks\bookingDesktopAppUpdateTaskMachineCore => C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2019-11-28] (bookingDesktopApp.) [Brak podpisu cyfrowego] Task: {8900ACA0-1160-45D1-919F-64574CDECEF1} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8910AA7B-7279-4D8E-82BB-272804404FB9} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8EA5EC20-0837-4D19-95AA-2C57806E0547} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {92A18535-CC4B-4F05-98B2-6A0389E00AF5} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9404B70C-72E3-4D59-9557-71C6814888F4} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2092720 2018-11-26] (Microsoft Corporation -> Microsoft) Task: {94C49172-5FE3-4D40-9721-10036FB6A813} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {9B56CDD7-6214-4F0F-8C03-EB1E98B42BCC} - System32\Tasks\Opera scheduled Autoupdate 1553878074 => C:\Users\Pc\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-05-19] (Opera Software AS -> Opera Software) Task: {9C72852B-8961-4417-82A8-5754BB77B484} - System32\Tasks\Overwolf Updater Task => E:\Overwolf\OverwolfUpdater.exe [2467160 2020-05-24] (Overwolf Ltd -> Overwolf LTD) Task: {9CEE8674-068B-4894-B185-AAC6155B84C1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe Task: {9D9486FE-ED64-4E5A-97EA-CF0F2CABF482} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A775F540-56C7-480A-AF6A-A3568BBE5979} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-05-30] (Google Inc -> Google Inc.) Task: {A9BA9D8B-233C-4865-8D05-88A974A00FA2} - System32\Tasks\DiagnosticTask => C:\Users\Pc\AppData\Roaming\Europa.Universalis.IV.v1.22.0.Incl.Third.Rome.DLC.Repack\jbutm.exe Task: {AC32F7EA-9503-4A5C-B98C-E8F749AC3A21} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-01] (Dropbox, Inc -> Dropbox, Inc.) Task: {B0DB26BF-C240-4B24-B30E-C660EFC8895A} - System32\Tasks\elbyExecuteWithUAC => D:\VirtualCloneDrive\ExecuteWithUAC.exe [77824 2013-03-22] () [Brak podpisu cyfrowego] Task: {B44DA432-4DE6-4D48-9C32-6EAFA7B52236} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [39600 2018-11-26] (Microsoft Corporation -> Microsoft) Task: {C077B380-260F-45AA-800E-81113A74AB0C} - System32\Tasks\{EDA495AC-E814-49EB-9CD4-78DD0FA07E07} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.36.0.101/pl/abandoninstall?source=lightinstaller&page=tsInstall Task: {C45022D8-C22C-43C1-8E6A-E1DA60EF295E} - System32\Tasks\Opera GX scheduled Autoupdate 1573538056 => C:\Users\Pc\AppData\Local\Programs\Opera GX\launcher.exe [1459224 2020-05-27] (Opera Software AS -> Opera Software) Task: {C95FA2B5-5D83-484C-BD0F-53C66586E752} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe Task: {CA6E418A-CFE8-418C-8A95-285703BB6C58} - System32\Tasks\BlueStacksHelper => D:\blustack\BlueStacks\Client\Helper\BlueStacksHelper.exe Task: {CB60B41E-6B8A-437C-9E50-2FB534DABFF3} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe <==== UWAGA Task: {CE94DFDC-928E-4519-9174-3B64C4AC7BD9} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-09-04] (AVG Netherlands B.V. -> AVG Technologies) Task: {D01A83C0-95E0-4E19-ACBB-151389103E9C} - System32\Tasks\update-S-1-5-21-3563840331-3337734302-301689356-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {D58CA8BE-2620-480E-B19B-8E6EA773F9F0} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2596720 2018-11-26] (Microsoft Corporation -> Microsoft Corporation) Task: {D94804D2-CCB1-402E-BD99-79F68CDA346E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems) Task: {DEBD3374-E48A-4428-A6AC-106F468291F9} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-09-04] (AVG Netherlands B.V. -> AVG Technologies) Task: {E25D5A81-3BF2-45ED-A15C-3B9F540F27D5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-06-03] (Avast Software s.r.o. -> Avast Software) Task: {E9A05E63-0423-4148-B58B-25D814302A72} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1957744 2018-11-26] (Microsoft Corporation -> Microsoft Corporation) Task: {E9D22333-4E7F-4A27-8E59-5E3755E3ACC9} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F088F8D3-F7A3-49C8-8533-C5AC5C16DCB9} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3387520 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) Task: {F2A23AE8-0621-4C5A-A99E-3B58DD9FB378} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3563840331-3337734302-301689356-1000 => C:\ProgramData\MEGAsync\MEGAupdater.exe [615160 2020-03-20] (Mega Limited -> Mega Limited) Task: {FD53AA5A-8F83-4FD7-B0BA-6115D1C5B03A} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2596720 2018-11-26] (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\update-S-1-5-21-3563840331-3337734302-301689356-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{157C700E-437B-4BBF-9AEB-1BD7E1F5E14F}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{3B71F0CB-D487-4A5B-818F-E1CADE704849}: [DhcpNameServer] 213.172.186.4 213.172.186.5 Tcpip\..\Interfaces\{BB284FF6-8254-46AA-90BF-2B15F5234E6B}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{DB881413-1A9B-468F-A754-D9A04FCC46E2}: [DhcpNameServer] 213.172.186.4 213.172.186.5 Tcpip\..\Interfaces\{E7000F4D-8B99-4FE3-9E91-3D6B10C838D8}: [DhcpNameServer] 192.168.42.129 Internet Explorer: ================== HKU\S-1-5-21-3563840331-3337734302-301689356-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.live.com/1rewlive4startup/home HKU\S-1-5-21-3563840331-3337734302-301689356-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp SearchScopes: HKU\S-1-5-21-3563840331-3337734302-301689356-1000 -> DefaultScope {50F45036-8D44-40C3-8EF4-F97AB6029A83} URL = hxxp://www.nav-pl.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3563840331-3337734302-301689356-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3563840331-3337734302-301689356-1000 -> {50F45036-8D44-40C3-8EF4-F97AB6029A83} URL = hxxp://www.nav-pl.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3563840331-3337734302-301689356-1000 -> {DCCE0AE3-67FF-4008-B251-3216CFA8D6D8} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q={searchTerms}&src=IE-SearchBox BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2018-07-19] (IObit Information Technology -> IObit) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_251\bin\ssv.dll [2020-06-03] (Oracle America, Inc. -> Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.) BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-06-02] (McAfee, LLC -> McAfee, LLC) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-06-03] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Pomocnik logowania za pomocą konta Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.) BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-06-02] (McAfee, LLC -> McAfee, LLC) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: IObit Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\IObit Malware Fighter\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2019-03-28] (IObit Information Technology -> IObit) Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - Brak pliku Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - Brak pliku Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - Brak pliku Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Brak pliku Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Brak pliku StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF DefaultProfile: 7kpldkdr.default FF ProfilePath: C:\Users\Pc\AppData\Roaming\Mozilla\Firefox\Profiles\7kpldkdr.default [2020-06-03] FF Homepage: Mozilla\Firefox\Profiles\7kpldkdr.default -> hxxp://www.nav-pl.com/ FF Extension: (IObit Surfing Protection & Ads Removal) - C:\Users\Pc\AppData\Roaming\Mozilla\Firefox\Profiles\7kpldkdr.default\Extensions\ascsurfingprotectionnew@iobit.com.xpi [2019-03-28] FF Extension: (Brak nazwy) - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [nie znaleziono] FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-06-02] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json] FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi FF Plugin: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-06-03] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-06-03] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS) FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @bookingdesktopapp.com/bookingDesktopApp Update;version=3 -> C:\Program Files (x86)\bookingDesktopApp\Update\1.3.99.0\npbookingDesktopAppUpdate3.dll [2019-11-28] (bookingDesktopApp.) [Brak podpisu cyfrowego] FF Plugin-x32: @bookingdesktopapp.com/bookingDesktopApp Update;version=9 -> C:\Program Files (x86)\bookingDesktopApp\Update\1.3.99.0\npbookingDesktopAppUpdate3.dll [2019-11-28] (bookingDesktopApp.) [Brak podpisu cyfrowego] FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Brak pliku] FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll [2020-06-03] (Avast Software s.r.o. -> AVAST Software) FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll [2020-06-03] (Avast Software s.r.o. -> AVAST Software) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Default [2020-06-03] CHR DownloadDir: E:\obrazy CHR Notifications: Default -> hxxps://aternos.org; hxxps://clknsee.com; hxxps://forum.gtarp.pl; hxxps://gotorp.pl; hxxps://hellcase.com; hxxps://key-drop.pl; hxxps://mail.google.com; hxxps://patronite.pl; hxxps://pubg.hellcase.com; hxxps://www.bananki.pl; hxxps://www.facebook.com; hxxps://www.machancecasino.com; hxxps://www.netflix.com; hxxps://www.sporcle.com; hxxps://zapytaj.onet.pl CHR HomePage: Default -> hxxp://www.nav-pl.com/ CHR StartupUrls: Default -> "hxxp://www.nav-pl.com/" CHR NewTab: Default -> Not-active:"chrome-extension://ncgedbgoggcobigaimlhdmmllhlbmlnj/newtabproduct.html", Not-active:"chrome-extension://fijccpiopmigdnmffiikljcnbmnflgec/product.html" CHR Extension: (Prezentacje) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13] CHR Extension: (Dokumenty) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Dysk Google) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-30] CHR Extension: (YouTube) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-30] CHR Extension: (Szukaj w Google) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2017-05-30] CHR Extension: (Arkusze) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13] CHR Extension: (FileShareFanatic) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\fijccpiopmigdnmffiikljcnbmnflgec [2020-05-17] CHR Extension: (Dokumenty Google offline) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-26] CHR Extension: (FileShareFanatic) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncgedbgoggcobigaimlhdmmllhlbmlnj [2020-05-18] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03] CHR Extension: (Gmail) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-24] CHR Extension: (Chrome Media Router) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-28] CHR Profile: C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-06-03] CHR HomePage: Profile 1 -> hxxps://mail.ru/cnt/10445?gp=811570 CHR StartupUrls: Profile 1 -> "hxxps://mail.ru/cnt/10445?gp=811570" CHR Extension: (Prezentacje) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-27] CHR Extension: (Dokumenty) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-27] CHR Extension: (Dysk Google) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-27] CHR Extension: (YouTube) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-27] CHR Extension: (Arkusze) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-27] CHR Extension: (McAfee® WebAdvisor) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2019-12-03] CHR Extension: (Dokumenty Google offline) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-27] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-03] CHR Extension: (Gmail) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-02] CHR Extension: (Chrome Media Router) - C:\Users\Pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-03] CHR Profile: C:\Users\Pc\AppData\Local\Google\Chrome\User Data\System Profile [2020-06-03] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] Opera: ======= OPR Notifications: hxxps://igg-games.com; hxxps://rtnearlieresta.pro ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [6392728 2020-06-03] (Avast Software s.r.o. -> AVAST Software) S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-06-03] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [348968 2020-06-03] (Avast Software s.r.o. -> AVAST Software) S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-06-03] (Avast Software s.r.o. -> AVAST Software) S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\81.1.4223.139\elevation_service.exe [1106528 2020-05-12] (Avast Software s.r.o. -> AVAST Software) S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-09-04] (AVG Netherlands B.V. -> AVG Technologies) R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [349552 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [6397888 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-09-04] (AVG Netherlands B.V. -> AVG Technologies) S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\81.1.4222.140\elevation_service.exe [954632 2020-05-12] (AVG Technologies USA, LLC -> AVG Technologies) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8395968 2020-01-27] (BattlEye Innovations e.K. -> ) S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (Shanghai Comet Network Technology -> www.BitComet.com) S2 bookingdesktopapp; C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2019-11-28] (bookingDesktopApp.) [Brak podpisu cyfrowego] S3 bookingdesktopappm; C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2019-11-28] (bookingDesktopApp.) [Brak podpisu cyfrowego] S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-01] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-01] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44552 2020-05-28] (Dropbox, Inc -> Dropbox, Inc.) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2019-05-14] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1208392 2019-12-19] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6617160 2019-12-19] (GOG Sp. z o.o. -> GOG.com) R2 Hamachi2Svc; E:\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Brak podpisu cyfrowego] R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2344208 2019-04-01] (IObit Information Technology -> IObit) S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [153360 2018-09-25] (IObit Information Technology -> IObit) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [939544 2020-06-02] (McAfee, LLC -> McAfee, LLC) S3 mracsvc; C:\Windows\System32\mracsvc.exe [10395248 2018-05-10] (Mail.Ru LLC -> LLC Mail.Ru) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [874472 2020-04-03] (NVIDIA Corporation -> NVIDIA Corporation) S3 Origin Client Service; D:\Origin\OriginClientService.exe [2508592 2020-05-26] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3459896 2020-05-26] (Electronic Arts, Inc. -> Electronic Arts) S3 OverwolfUpdater; E:\Overwolf\OverwolfUpdater.exe [2467160 2020-05-24] (Overwolf Ltd -> Overwolf LTD) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2019-04-23] (Even Balance, Inc. -> ) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [474256 2019-12-05] (Rockstar Games, Inc. -> Rockstar Games) S2 RTLDHCPService; C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe [262360 2014-04-23] (Realtek Semiconductor Corp -> Realtek) R2 RunSwUSB; C:\Windows\runSW.exe [36864 2014-04-15] () [Brak podpisu cyfrowego] S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2019-10-27] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9807224 2020-06-02] (Riot Games, Inc. -> Riot Games, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2015-01-12] (Microsoft Windows -> Microsoft Corporation) R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation -> Microsoft Corp.) S2 cFosSpeedS; "D:\Program Files (x86)\spd.exe" -service [X] S2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 AsrAppCharger; C:\Windows\System32\DRIVERS\AsrAppCharger.sys [17192 2011-11-07] (ASROCK Incorporation -> Windows (R) Win 7 DDK provider) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-06-03] (Avast Software s.r.o. -> AVAST Software) S3 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205896 2020-06-03] (Avast Software s.r.o. -> AVAST Software) S3 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [235088 2020-06-03] (Avast Software s.r.o. -> AVAST Software) S3 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178768 2020-06-03] (Avast Software s.r.o. -> AVAST Software) S3 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60496 2020-06-03] (Avast Software s.r.o. -> AVAST Software) S3 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-06-03] (Avast Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175208 2020-06-03] (Avast Software s.r.o. -> AVAST Software) S3 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [506152 2020-06-03] (Avast Software s.r.o. -> AVAST Software) S3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-06-03] (AVAST Software s.r.o. -> AVAST Software) R3 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-06-03] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-06-03] (Avast Software s.r.o. -> AVAST Software) S3 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-06-03] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [462600 2020-06-03] (Avast Software s.r.o. -> AVAST Software) S3 aswStm; C:\Windows\System32\drivers\aswStm.sys [216824 2020-06-03] (Avast Software s.r.o. -> AVAST Software) S3 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [322264 2020-06-03] (Avast Software s.r.o. -> AVAST Software) R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [37208 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [205952 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [234632 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [178832 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [61072 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [42856 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [175776 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [109336 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [84928 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [851664 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [461064 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [235552 2020-05-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [319200 2020-05-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [501216 2015-06-18] (Intel(R) Intel Network Drivers -> Intel Corporation) R3 EuMusDesignVirtualAudioCableWdm; C:\Windows\System32\DRIVERS\vrtaucbl.sys [66728 2020-04-16] (NTONYX Ltd. -> Eugene V. Muzychenko) R1 HWiNFO; C:\Windows\system32\drivers\HWiNFO64A.SYS [65616 2020-03-04] (Martin Malik - REALiX -> REALiX(tm)) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31144 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation) R3 IMFDownProtect; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFDownProtect.sys [21928 2018-12-06] (IObit Information Technology -> IObit) S4 IMFFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\IMFFilter.sys [22440 2018-12-06] (IObit Information Technology -> IObit) R3 IMFForceDelete; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFForceDelete.sys [16216 2018-12-06] (IObit Information Technology -> IObit) S3 ImfObCallback; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\ImfObCallback.sys [19312 2018-12-06] (IObit Information Technology -> IObit) R2 ImfPfFilter; C:\Windows\system32\drivers\imfpffilter.sys [70240 2019-01-21] (IObit CO., LTD -> IObit) S4 IObitUnlocker; E:\IObit Unlocker\IObitUnlocker.sys [36568 2013-09-30] (IObit Information Technology -> IObit) R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [19312 2018-10-16] (IObit Information Technology -> IObit) R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [25488 2018-10-16] (IObit Information Technology -> IObit) S3 libusbK; C:\Windows\System32\DRIVERS\libusbK.sys [47200 2018-11-30] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net) R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [180480 2015-10-08] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) S3 mracdrv; C:\Windows\System32\drivers\mracdrv.sys [9623160 2018-05-10] (Mail.Ru LLC -> LLC Mail.Ru) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2020-04-01] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [69840 2020-03-06] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation) R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [35800 2018-12-06] (IObit Information Technology -> IObit) R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [3591384 2014-10-13] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-05] (Bruce James -> Scarlet.Crush Productions) S3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [213216 2018-11-08] (Oracle Corporation -> Oracle Corporation) R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [6301304 2020-06-02] (Riot Games, Inc. -> Riot Games, Inc.) R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [270608 2017-07-30] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation) S3 AsrAutoChkUpdDrv; \??\C:\Windows\SysWOW64\Drivers\AsrAutoChkUpdDrv.sys [X] U3 aswbdisk; Brak ImagePath S3 BstkDrv; \??\C:\Program Files (x86)\BlueStacks\BstkDrv.sys [X] S3 xhunter1; \??\C:\Windows\xhunter1.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-06-03 18:43 - 2020-06-03 13:52 - 000335976 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2020-06-03 18:37 - 2020-06-03 18:43 - 000000000 ____D C:\ProgramData\Avast Software 2020-06-03 18:30 - 2020-06-03 19:08 - 000000000 ____D C:\FRST 2020-06-03 13:56 - 2020-06-03 18:25 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) 2020-06-03 13:56 - 2020-06-03 18:25 - 000003520 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineUA 2020-06-03 13:56 - 2020-06-03 18:25 - 000003392 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineCore 2020-06-03 13:56 - 2020-06-03 18:25 - 000003150 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon) 2020-06-03 13:56 - 2020-06-03 16:52 - 000000000 ____D C:\Users\Pc\AppData\Local\AVAST Software 2020-06-03 13:56 - 2020-06-03 13:56 - 000002517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk 2020-06-03 13:56 - 2020-06-03 13:56 - 000000000 ____D C:\Program Files (x86)\AVAST Software 2020-06-03 13:55 - 2020-06-03 13:55 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Avast Software 2020-06-03 13:54 - 2020-06-03 13:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2020-06-03 13:53 - 2020-06-03 18:40 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update 2020-06-03 13:52 - 2020-06-03 13:52 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000506152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000462600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000322264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000235088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000216824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000205896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000178768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000175208 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000060496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys 2020-06-03 13:52 - 2020-06-03 13:52 - 000000000 ____D C:\Program Files\Common Files\Avast Software 2020-06-03 13:51 - 2020-06-03 13:51 - 000000000 ____D C:\Program Files\Avast Software 2020-06-03 13:20 - 2020-06-03 13:20 - 000129192 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2020-06-03 13:20 - 2020-06-03 13:20 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Sun 2020-06-03 13:20 - 2020-06-03 13:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2020-06-03 13:20 - 2020-06-03 13:20 - 000000000 ____D C:\Program Files\Java 2020-06-03 13:12 - 2020-06-03 17:07 - 000000000 ____D C:\Users\Pc\Desktop\serwer 2020-06-03 13:12 - 2020-06-03 13:09 - 035186498 _____ C:\Users\Pc\Desktop\spongeforge-1.10.2-2477-5.2.0-BETA-2793.jar 2020-06-02 12:29 - 2020-06-02 12:31 - 000000000 ____D C:\Users\Pc\AppData\Roaming\team-link 2020-06-02 12:29 - 2020-06-02 12:29 - 000002300 _____ C:\Users\Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamLink.lnk 2020-06-02 12:29 - 2020-06-02 12:29 - 000000000 ____D C:\Users\Pc\Documents\TeamLink 2020-06-02 12:29 - 2020-06-02 12:29 - 000000000 ____D C:\Users\Pc\AppData\Roaming\TeamLink 2020-06-02 12:29 - 2020-06-02 12:29 - 000000000 ____D C:\Users\Pc\AppData\Local\team-link-updater 2020-06-02 11:07 - 2020-06-02 11:07 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2020-06-02 10:38 - 2020-06-02 10:38 - 000000000 ____D C:\Users\Pc\AppData\Local\VALORANT 2020-06-01 15:08 - 2020-06-01 15:09 - 000000000 ___RD C:\Users\Pc\Dropbox 2020-06-01 15:06 - 2020-06-01 15:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2020-06-01 15:05 - 2020-06-01 15:05 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Dropbox 2020-06-01 15:03 - 2020-06-03 19:08 - 000001144 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2020-06-01 15:03 - 2020-06-03 18:50 - 000001140 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2020-06-01 15:03 - 2020-06-03 18:25 - 000004150 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA 2020-06-01 15:03 - 2020-06-03 18:25 - 000003898 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore 2020-06-01 15:03 - 2020-06-01 15:08 - 000000000 ____D C:\Users\Pc\AppData\Local\Dropbox 2020-06-01 15:03 - 2020-06-01 15:07 - 000000000 ____D C:\Program Files (x86)\Dropbox 2020-06-01 15:03 - 2020-06-01 15:03 - 000000000 ____D C:\ProgramData\Dropbox 2020-06-01 12:23 - 2020-06-01 12:23 - 000000000 ____D C:\Users\Pc\AppData\LocalLow\Noble Muffins 2020-06-01 12:17 - 2020-06-01 12:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thief Simulator 2020-05-29 09:13 - 2019-06-12 18:09 - 000453280 _____ (Leppsoft) C:\Windows\system32\UniteFx.dll 2020-05-28 14:20 - 2020-05-28 14:20 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys 2020-05-28 14:20 - 2020-05-28 14:20 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys 2020-05-28 14:20 - 2020-05-28 14:20 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys 2020-05-28 14:20 - 2020-05-28 14:20 - 000044552 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2020-05-28 09:13 - 2020-05-28 21:04 - 000000000 ____D C:\Users\Pc\Desktop\bindy 2020-05-28 08:58 - 2020-06-03 17:22 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Leppsoft 2020-05-27 12:36 - 2020-05-27 12:36 - 000000000 ____D C:\Riot Games 2020-05-27 11:31 - 2020-05-27 11:31 - 001207319 _____ C:\Windows\unins001.exe 2020-05-27 11:31 - 2020-05-27 11:31 - 000010818 _____ C:\Windows\unins001.dat 2020-05-27 11:31 - 2020-05-27 11:31 - 000001583 _____ C:\AiOLog.txt 2020-05-27 11:31 - 2020-05-27 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2020-05-27 11:31 - 2017-04-01 20:44 - 003450616 _____ (Red Hat) C:\Windows\system32\cygwin1.dll 2020-05-27 11:31 - 2017-01-26 07:25 - 001265664 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\system32\libeay32.dll 2020-05-27 11:31 - 2017-01-26 07:25 - 000274944 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\system32\ssleay32.dll 2020-05-27 11:31 - 2017-01-26 07:25 - 000274944 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\system32\libssl32.dll 2020-05-27 11:31 - 2015-07-10 11:51 - 000456008 _____ (AutoIt Team) C:\Windows\system32\autoitx3.dll 2020-05-27 11:31 - 2014-01-31 03:14 - 001055676 _____ (Free Software Foundation) C:\Windows\system32\libiconv2.dll 2020-05-27 11:31 - 2014-01-25 14:30 - 000131072 _____ (Sereby Corporation) C:\Windows\system32\AiORuntimes.dll 2020-05-27 11:31 - 2013-12-23 15:44 - 000163480 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 001070232 _____ (Microsoft Corporation) C:\Windows\system32\mscomctl.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000660120 _____ (Microsoft Corporation) C:\Windows\system32\mscomct2.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000617896 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000444328 _____ (Microsoft Corporation) C:\Windows\system32\mshflxgd.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000416408 _____ (Microsoft Corporation ) C:\Windows\system32\comct332.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000279192 _____ (Microsoft Corporation) C:\Windows\system32\msdatgrd.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000259736 _____ (Microsoft Corporation) C:\Windows\system32\msflxgrd.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000253080 _____ (Microsoft Corporation) C:\Windows\system32\msdatlst.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000222360 _____ (Microsoft Corporation) C:\Windows\system32\tabctl32.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000219288 _____ (Microsoft Corporation) C:\Windows\system32\richtx32.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000218776 _____ (Microsoft Corporation) C:\Windows\system32\dblist32.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000212112 _____ (Microsoft Corporation) C:\Windows\system32\mci32.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000179352 _____ (Microsoft Corporation) C:\Windows\system32\msmask32.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000170920 _____ (Microsoft Corporation) C:\Windows\system32\comct232.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000131728 _____ (Microsoft Corporation) C:\Windows\system32\msinet.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000130712 _____ (Microsoft Corporation) C:\Windows\system32\msstdfmt.dll 2020-05-27 11:31 - 2013-12-20 01:48 - 000127640 _____ (Microsoft Corporation) C:\Windows\system32\mswinsck.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000119960 _____ (Microsoft Corporation) C:\Windows\system32\mscomm32.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000108696 _____ (Microsoft Corporation) C:\Windows\system32\msstkprp.dll 2020-05-27 11:31 - 2013-12-20 01:48 - 000104088 _____ (Microsoft Corporation) C:\Windows\system32\picclp32.ocx 2020-05-27 11:31 - 2013-12-20 01:48 - 000084624 _____ (Microsoft Corporation) C:\Windows\system32\sysinfo.ocx 2020-05-27 11:31 - 2012-06-14 15:36 - 000107520 _____ C:\Windows\system32\zlib1.dll 2020-05-27 11:31 - 2012-04-03 17:11 - 000138752 _____ C:\Windows\system32\libpng15.dll 2020-05-27 11:31 - 2011-10-12 04:09 - 004033440 _____ (Intel Corporation) C:\Windows\system32\libmmd.dll 2020-05-27 11:31 - 2011-01-12 14:36 - 001054208 _____ (Microsoft Corporation) C:\Windows\system32\mfc71u.dll 2020-05-27 11:31 - 2011-01-12 14:25 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\mfc71DEU.dll 2020-05-27 11:31 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc71ITA.dll 2020-05-27 11:31 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc71FRA.dll 2020-05-27 11:31 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc71ESP.dll 2020-05-27 11:31 - 2011-01-12 14:25 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\mfc71ENU.dll 2020-05-27 11:31 - 2011-01-12 14:25 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc71KOR.dll 2020-05-27 11:31 - 2011-01-12 14:25 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc71JPN.dll 2020-05-27 11:31 - 2011-01-12 14:25 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\mfc71CHT.dll 2020-05-27 11:31 - 2011-01-12 14:25 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\mfc71CHS.dll 2020-05-27 11:31 - 2011-01-12 14:19 - 001060864 _____ (Microsoft Corporation) C:\Windows\system32\mfc71.dll 2020-05-27 11:31 - 2011-01-12 13:53 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\atl71.dll 2020-05-27 11:31 - 2010-03-18 21:21 - 000799568 _____ (Microsoft Corporation) C:\Windows\system32\msdia100.dll 2020-05-27 11:31 - 2008-08-26 07:40 - 000162304 _____ C:\Windows\system32\libpng13.dll 2020-05-27 11:31 - 2007-02-01 23:13 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\msvcp71.dll 2020-05-27 11:31 - 2007-02-01 20:11 - 000344064 _____ (Microsoft Corporation) C:\Windows\system32\msvcr71.dll 2020-05-27 11:31 - 2007-01-30 23:04 - 000339968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr70.dll 2020-05-27 11:31 - 2006-08-26 01:28 - 001017344 _____ (Microsoft Corporation) C:\Windows\system32\mfc70u.dll 2020-05-27 11:31 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70ITA.dll 2020-05-27 11:31 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70FRA.dll 2020-05-27 11:31 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70ESP.dll 2020-05-27 11:31 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70DEU.dll 2020-05-27 11:31 - 2006-08-26 01:15 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\mfc70ENU.dll 2020-05-27 11:31 - 2006-08-26 01:15 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc70KOR.dll 2020-05-27 11:31 - 2006-08-26 01:15 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc70JPN.dll 2020-05-27 11:31 - 2006-08-26 01:15 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\mfc70CHT.dll 2020-05-27 11:31 - 2006-08-26 01:15 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\mfc70CHS.dll 2020-05-27 11:31 - 2006-08-26 01:07 - 001024000 _____ (Microsoft Corporation) C:\Windows\system32\mfc70.dll 2020-05-27 11:31 - 2006-08-26 00:17 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\atl70.dll 2020-05-27 11:31 - 2005-05-06 14:52 - 000103424 _____ (GNU ) C:\Windows\system32\libintl3.dll 2020-05-27 11:31 - 2005-01-20 20:25 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\msvci70.dll 2020-05-27 11:31 - 2002-01-05 06:40 - 000487424 _____ (Microsoft Corporation) C:\Windows\system32\msvcp70.dll 2020-05-27 11:31 - 1996-01-12 04:00 - 000722192 _____ (Microsoft Corporation) C:\Windows\system32\vb40032.dll 2020-05-27 11:30 - 2020-05-27 11:30 - 000000000 ____D C:\Program Files\Microsoft Silverlight 2020-05-27 11:30 - 2020-05-27 11:30 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2020-05-26 12:49 - 2020-05-26 12:49 - 000121533 _____ C:\Users\Pc\Downloads\PRACA KLASOWA- Wyr.algebraiczne i równania.pdf 2020-05-21 07:41 - 2020-05-21 07:40 - 000338104 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe 2020-05-21 07:41 - 2020-05-21 07:40 - 000235552 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys 2020-05-21 07:41 - 2020-05-21 07:40 - 000175776 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys 2020-05-20 00:50 - 2020-05-20 00:50 - 000000000 ____D C:\Users\Pc\AppData\Local\Honeygain 2020-05-20 00:49 - 2020-05-20 00:55 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Honeygain 2020-05-20 00:49 - 2020-05-20 00:49 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Honeygain 2020-05-20 00:49 - 2020-05-20 00:49 - 000000000 ____D C:\Users\Pc\AppData\Local\IsolatedStorage 2020-05-20 00:49 - 2020-05-20 00:49 - 000000000 ____D C:\Users\Pc\AppData\Local\AdvinstAnalytics 2020-05-19 14:45 - 2020-05-19 14:45 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokémon Trading Card Game Online 2020-05-17 20:40 - 2020-05-17 20:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearts of Iron IV 2020-05-13 09:55 - 2020-05-13 09:55 - 000365022 _____ C:\Users\Pc\Downloads\Rozwiązywanie zadań tekstowych za pomocą równań.pdf 2020-05-12 17:29 - 2020-05-12 17:29 - 000648804 _____ C:\Users\Pc\Documents\Czar szkolnych lat.xcf 2020-05-12 17:29 - 2020-05-12 17:29 - 000021830 _____ C:\Users\Pc\AppData\Local\recently-used.xbel 2020-05-12 16:44 - 2020-05-12 18:58 - 000002212 _____ C:\Users\Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\yuzu.lnk 2020-05-11 09:46 - 2020-05-11 09:46 - 000000000 ____D C:\Users\Pc\AppData\Local\JimsApps 2020-05-11 09:46 - 2020-05-11 09:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Snaz 2020-05-11 09:14 - 2020-05-11 09:14 - 000000000 ____D C:\ProgramData\obs-studio-hook 2020-05-04 07:33 - 2020-05-04 07:33 - 000520463 _____ C:\Users\Pc\Downloads\Upraszczanie wyrażeń algebraicznych_1.PDF 2020-05-04 07:33 - 2020-05-04 07:33 - 000436849 _____ C:\Users\Pc\Downloads\Upraszczanie wyrażeń algebraicznych_2.PDF ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-06-03 19:06 - 2009-07-14 06:45 - 000031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2020-06-03 19:06 - 2009-07-14 06:45 - 000031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2020-06-03 19:02 - 2017-05-30 17:02 - 000000000 ____D C:\ProgramData\NVIDIA 2020-06-03 18:56 - 2019-06-11 20:42 - 000000000 ____D C:\Users\Pc\AppData\Local\Spotify 2020-06-03 18:56 - 2017-06-24 12:56 - 000000000 ____D C:\Users\Pc\AppData\Local\Overwolf 2020-06-03 18:56 - 2011-04-12 15:21 - 000754478 _____ C:\Windows\system32\perfh015.dat 2020-06-03 18:56 - 2011-04-12 15:21 - 000163336 _____ C:\Windows\system32\perfc015.dat 2020-06-03 18:56 - 2009-07-14 07:13 - 001711682 _____ C:\Windows\system32\PerfStringBackup.INI 2020-06-03 18:56 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2020-06-03 18:53 - 2020-03-31 17:31 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Blitz 2020-06-03 18:53 - 2020-01-03 12:36 - 000000000 ____D C:\Users\Pc\AppData\Roaming\GOSU Assistant 2020-06-03 18:53 - 2019-06-11 20:38 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Spotify 2020-06-03 18:51 - 2020-04-17 14:25 - 000000001 _____ C:\Windows\vgkbootstatus.dat 2020-06-03 18:49 - 2019-02-05 23:16 - 000000000 _____ C:\Windows\system32\last.dump 2020-06-03 18:49 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2020-06-03 18:36 - 2017-05-30 17:20 - 000000000 ____D C:\ProgramData\Avg 2020-06-03 18:31 - 2018-07-25 10:05 - 000000000 ____D C:\Users\Pc\AppData\Roaming\discord 2020-06-03 18:25 - 2019-11-28 12:10 - 000003312 _____ C:\Windows\system32\Tasks\bookingDesktopAppUpdateTaskMachineCore 2020-06-03 18:25 - 2019-11-12 07:54 - 000004100 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1573538056 2020-06-03 18:25 - 2019-08-20 17:07 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-06-03 18:25 - 2019-08-20 17:07 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-06-03 18:25 - 2019-08-20 17:07 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-06-03 18:25 - 2019-08-20 17:07 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-06-03 18:25 - 2019-07-08 16:20 - 000002918 _____ C:\Windows\system32\Tasks\elbyExecuteWithUAC 2020-06-03 18:25 - 2019-04-25 20:35 - 000003706 _____ C:\Windows\system32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) 2020-06-03 18:25 - 2019-04-25 20:35 - 000003124 _____ C:\Windows\system32\Tasks\AVG Secure Browser Heartbeat Task (Logon) 2020-06-03 18:25 - 2019-03-29 18:47 - 000004094 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1553878074 2020-06-03 18:25 - 2018-12-12 21:32 - 000004146 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-06-03 18:25 - 2018-12-12 21:32 - 000003940 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-06-03 18:25 - 2018-12-12 21:32 - 000003798 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-06-03 18:25 - 2018-09-29 15:56 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2020-06-03 18:25 - 2018-09-04 15:29 - 000003486 _____ C:\Windows\system32\Tasks\AVGUpdateTaskMachineUA 2020-06-03 18:25 - 2018-09-04 15:29 - 000003358 _____ C:\Windows\system32\Tasks\AVGUpdateTaskMachineCore 2020-06-03 18:25 - 2018-09-02 14:54 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software 2020-06-03 18:25 - 2017-06-24 12:58 - 000004224 _____ C:\Windows\system32\Tasks\Overwolf Updater Task 2020-06-03 18:25 - 2017-06-01 21:22 - 000004174 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update 2020-06-03 18:25 - 2017-05-30 17:03 - 000003738 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-06-03 18:25 - 2017-05-30 17:03 - 000003494 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-06-03 18:25 - 2017-05-30 16:45 - 000003484 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2020-06-03 18:25 - 2017-05-30 16:45 - 000003356 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2020-06-03 14:10 - 2017-08-28 12:22 - 000000000 ____D C:\Users\Pc\Desktop\programy 2020-06-03 09:29 - 2017-09-10 15:52 - 000000000 ____D C:\Users\Pc\AppData\Roaming\.minecraft 2020-06-02 19:36 - 2018-09-04 15:29 - 000002322 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk 2020-06-02 18:03 - 2017-06-03 10:27 - 000000000 ____D C:\Program Files (x86)\Steam 2020-06-02 13:51 - 2020-04-17 13:39 - 000000000 ____D C:\Program Files\Riot Vanguard 2020-06-02 11:25 - 2017-12-24 20:04 - 000000000 ____D C:\Users\Pc\AppData\Roaming\TS3Client 2020-06-02 11:07 - 2020-04-03 11:55 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Zoom 2020-06-02 11:06 - 2017-06-27 15:26 - 000000000 ____D C:\Users\Pc\AppData\Local\Ubisoft Game Launcher 2020-06-02 10:41 - 2017-08-28 12:20 - 000000000 ____D C:\Users\Pc\Desktop\gry 2020-06-02 08:09 - 2019-09-24 13:36 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Blitz-helpers 2020-06-01 18:10 - 2018-12-28 12:40 - 000000000 ____D C:\Users\Pc\AppData\Local\FiveM 2020-06-01 15:26 - 2019-04-23 15:04 - 000103736 _____ C:\Windows\SysWOW64\PnkBstrB.exe 2020-06-01 15:26 - 2017-05-31 21:59 - 000000000 ____D C:\Users\Pc\AppData\Local\CrashDumps 2020-06-01 15:13 - 2017-05-30 16:32 - 000000000 ____D C:\Users\Pc 2020-06-01 15:07 - 2020-02-20 18:41 - 000000000 ____D C:\Users\Pc\AppData\Local\cache 2020-06-01 13:57 - 2019-06-18 10:37 - 000000000 ____D C:\Users\Pc\Documents\Maniaplanet 2020-06-01 13:41 - 2019-06-18 10:37 - 000000000 ____D C:\ProgramData\Maniaplanet 2020-05-31 16:16 - 2017-05-31 15:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roblox 2020-05-31 12:21 - 2017-09-26 07:57 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Origin 2020-05-31 12:21 - 2017-09-26 07:56 - 000000000 ____D C:\ProgramData\Origin 2020-05-31 11:36 - 2017-09-26 07:57 - 000000000 ____D C:\Users\Pc\AppData\Local\Origin 2020-05-30 15:10 - 2017-06-24 12:58 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf 2020-05-29 15:31 - 2017-06-03 11:00 - 000000000 ____D C:\Users\Pc\Documents\My Games 2020-05-28 20:22 - 2017-06-03 10:37 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2020-05-28 19:06 - 2017-06-01 21:21 - 000319200 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys 2020-05-28 09:06 - 2019-04-07 17:51 - 000000000 ____D C:\ProgramData\ProductData 2020-05-28 08:43 - 2018-12-13 17:11 - 000000000 ____D C:\Users\Pc\AppData\Roaming\SCP Secret Laboratory 2020-05-28 07:26 - 2017-05-30 16:45 - 000002240 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-05-27 11:34 - 2017-10-09 17:21 - 000000000 ____D C:\Windows\SysWOW64\directx 2020-05-27 11:31 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system 2020-05-27 11:28 - 2015-01-15 14:14 - 001683352 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2020-05-27 11:25 - 2017-05-30 16:36 - 000000000 ____D C:\ProgramData\Package Cache 2020-05-26 13:36 - 2018-10-03 15:07 - 000002069 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2020-05-26 09:51 - 2017-06-01 11:28 - 000000000 ____D C:\Users\Pc\Documents\The Witcher 3 2020-05-25 11:02 - 2017-08-08 19:03 - 000000000 ____D C:\Users\Pc\Documents\Euro Truck Simulator 2 2020-05-24 20:43 - 2018-08-26 19:36 - 000000000 ____D C:\Users\Pc\AppData\Roaming\BitComet 2020-05-21 15:59 - 2017-05-30 21:03 - 000000000 ____D C:\Users\Pc\AppData\Local\ElevatedDiagnostics 2020-05-21 15:58 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF 2020-05-21 07:40 - 2019-01-17 16:24 - 000037208 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArDisk.sys 2020-05-21 07:40 - 2018-10-22 08:08 - 000042856 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgKbd.sys 2020-05-21 07:40 - 2017-11-30 16:23 - 000205952 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys 2020-05-21 07:40 - 2017-06-01 21:21 - 000851664 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys 2020-05-21 07:40 - 2017-06-01 21:21 - 000461064 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys 2020-05-21 07:40 - 2017-06-01 21:21 - 000109336 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys 2020-05-21 07:40 - 2017-06-01 21:21 - 000084928 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys 2020-05-21 07:39 - 2019-01-19 20:24 - 000234632 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriver.sys 2020-05-21 07:39 - 2019-01-17 16:24 - 000178832 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsh.sys 2020-05-21 07:39 - 2019-01-17 16:24 - 000061072 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniv.sys 2020-05-20 08:15 - 2018-05-14 14:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2020-05-20 08:15 - 2017-05-31 19:57 - 000000000 ____D C:\Users\Pc\AppData\Roaming\Skype 2020-05-19 14:45 - 2017-06-12 21:15 - 000000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin 2020-05-19 14:45 - 2017-06-12 21:15 - 000000000 ____D C:\Users\Pc\AppData\LocalLow\Unity 2020-05-19 10:28 - 2017-06-08 13:35 - 000000000 ____D C:\Users\Pc\AppData\Roaming\obs-studio 2020-05-18 22:48 - 2017-06-08 13:50 - 000000000 ____D C:\Users\Pc\AppData\Roaming\vlc 2020-05-18 22:44 - 2018-06-19 11:20 - 000000000 ____D C:\Windows\Minidump 2020-05-18 19:56 - 2018-08-11 13:41 - 000000000 ____D C:\Users\Pc\AppData\Roaming\libraries 2020-05-18 19:48 - 2020-03-09 18:43 - 000000382 _____ C:\Windows\Tasks\update-S-1-5-21-3563840331-3337734302-301689356-1000.job 2020-05-18 19:46 - 2020-04-15 09:30 - 000003228 _____ C:\Windows\system32\Tasks\{8A05072A-CDFC-4501-85EB-86C9BDA2D8D4} 2020-05-18 19:46 - 2020-03-09 18:43 - 000003364 _____ C:\Windows\system32\Tasks\update-S-1-5-21-3563840331-3337734302-301689356-1000 2020-05-18 19:46 - 2018-12-12 21:32 - 000003792 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-05-15 12:16 - 2018-11-18 18:07 - 000000000 ____D C:\Users\Pc\AppData\Local\babl-0.1 2020-05-12 17:29 - 2018-11-18 18:08 - 000000000 ____D C:\Users\Pc\AppData\Local\gtk-2.0 2020-05-12 16:44 - 2019-01-01 19:14 - 000000000 ____D C:\Users\Pc\AppData\Local\yuzu 2020-05-10 20:29 - 2020-02-27 22:05 - 000000164 _____ C:\Users\Pc\Desktop\konta lol.txt 2020-05-05 14:03 - 2019-06-17 12:58 - 000000565 _____ C:\Users\Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk ==================== Pliki w katalogu głównym wybranych folderów ======== 2020-04-28 08:24 - 2020-04-28 08:24 - 005322161 _____ () C:\Program Files (x86)\Common Files\OptiFine_1.15.2_HD_U_G1.jar 2020-04-28 08:25 - 2020-04-28 08:25 - 384747802 _____ () C:\Program Files (x86)\Common Files\Pixelmon.exe 2019-06-13 14:39 - 2019-06-13 14:40 - 007293440 _____ () C:\Users\Pc\AppData\Roaming\yuzu_install.exe 2019-06-13 14:39 - 2019-06-13 14:42 - 000008784 _____ () C:\Users\Pc\AppData\Roaming\yuzu_installer.log 2017-07-20 19:57 - 2017-07-20 19:57 - 000000090 _____ () C:\Users\Pc\AppData\Local\fusioncache.dat 2020-02-20 18:41 - 2020-03-29 21:05 - 000003427 _____ () C:\Users\Pc\AppData\Local\kdenliverc 2017-07-26 10:15 - 2017-07-26 10:15 - 000000000 ___SH () C:\Users\Pc\AppData\Local\LumaEmu 2020-05-12 17:29 - 2020-05-12 17:29 - 000021830 _____ () C:\Users\Pc\AppData\Local\recently-used.xbel 2020-03-09 18:43 - 2020-03-09 18:43 - 000000003 _____ () C:\Users\Pc\AppData\Local\updater.log 2020-02-20 18:41 - 2020-02-20 18:41 - 000000535 _____ () C:\Users\Pc\AppData\Local\user-places.xbel 2020-02-20 18:41 - 2020-02-20 18:41 - 000000000 _____ () C:\Users\Pc\AppData\Local\user-places.xbel.tbcache 2020-03-09 18:43 - 2020-03-09 18:43 - 000000424 _____ () C:\Users\Pc\AppData\Local\UserProducts.xml ==================== FCheck ================================ (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) FCheck: C:\Windows\SysWOW64\lastpass_1337.exe [2017-09-10] <==== UWAGA (zerobajtowy plik/folder) ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) UWAGA: ==> Nie można uzyskać dostępu do BCD. -> 0 LastRegBack: 2020-05-27 17:37 ==================== Koniec FRST.txt ========================